Professional Documents
Culture Documents
BEC B1 Mcqs
BEC B1 Mcqs
BEC112996
A form of compensation that would most likely align shareholder interest with
management conduct is:
A fixed salary
The best form of executive compensation that aligns management's conduct with
shareholders objectives is a combination of fixed and incentive based compensation
related to long term stock price. If managers are given too much fixed
compensation, they may become too complacent and may not take appropriate risks. If
managers are given too much incentive based compensation related to short term,
they may take excessive risks to maximize their compensation. Therefore, a
combination of both fixed and incentive based compensation related to long term
stock price is best.
Option (a) is incorrect because a salary plus a bonus for the current period is a
compensation based on performance measured by accounting profit which can be
manipulated or managed. Therefore, it is not the best form of compensation.
Option (b) is incorrect because salary plus equity stock options related to short
term may encourage management to put excessive focus on increase of the stock price
in the short term at the expense of long term stock value.However the risk appetite
for managers to maximize their compensation is lesser in stock plus stock option
incentives when compared to salary plus bonus based on profit incentives.
Option (d) is incorrect because a fixed salary is not the best compensation as it
may encourage managers to become complacent and not take appropriate risks to
increase share price.
2
BEC112988
The auditor should report any critical findings to the management first and try to
get a resolution. He should also report critical issues to the audit committee of
the board of directors, along with management's progress towards resolving them on
a regular basis.
Option (a) is incorrect as the Chief Audit Executive (CAE) is not required to
report to external agencies. The CAE is a part of the corporation who reports
functionally to the audit committee and administratively to the Chief Executive
Officer.
Option (c) is incorrect because the internal auditor should first approach the
management in case of any issue of risk or control and try to get a resolution from
them.
Option (d) is incorrect because the internal auditor should first report the issue
to the senior management and in case there is no resolution, he should report to
the audit committee of the board of directors.
3
BEC11415
helps an organization to better understand how mission, vision, and core values
form the initial expression of what types and amount of risk are acceptable to
consider when setting strategy.
eliminates repetitive processes and greatly reduce the need to manually enter
information.
i) How mission, vision, and core values form the initial expression of what types
and amount of risk are acceptable to consider when setting strategy.
ii) The possibility that strategy and business objectives may not align with the
mission, vision, and core values.
iii) The types and amount of risk the organization potentially exposes itself to by
choosing a particular strategy.
iv) The types and amount of risk inherent in carrying out its strategy and
achieving business objectives and the acceptability of this level of risk, and
ultimately, value.
Options (b), (c) and (d) are incorrect based on the above explanation.
4
BEC11425
The 5 inter-related components in the updated ERM Framework are supported by a set
of _____.
18 principles
25 principles
20 principles
23 principles
Under COSO’s ERM updated 2017 Framework, ERM consists of 5 components {Mnemonic:
CRIME}: Governance & Culture; Strategy & Objective-setting; Performance; Review and
Revision; and Information, Communication & Reporting. The 5 inter-related
components in the updated ERM Framework are supported by a set of 20 principles.
Options (a), (b) and (d) are incorrect based on the above explanation.
5
BEC314105
The treasurer signs the checks and immediately after signing cancels the supporting
documents so that they will not accidentally be processed again at a later time.
The treasurer then places the check in the envelope, seals it, and arranges for
mailing.
Option (a) and (b) are incorrect because accounts payable department would usually
matches the receiving reports, purchase orders and vendor’s invoices and approve
vouchers for payment when all documentation is proper and present.
6
BEC118791
While designing and implementing controls, organizations must decide whether the
control is
7
BEC113543
Shareholders have voting rights towards hiring of senior management of the company.
Option (a) is incorrect because shareholders have no voting rights towards hiring
of senior management of the company. Senior management is hired by the board of
directors of the corporation.
Option (b) is incorrect because board of directors need not take shareholders’
approval for increasing management’s compensation, as board of directors are only
responsible for determining management’s compensation.
An accountant summing the assets side and verifying it to the liabilities and
equity side
An investment analyst plotting the NPV profile and determining whether the IRR
calculated by trial and error is the same as in the graph
Option (b), Option (c), and Option (d) are incorrect based on above explanation.
9
BEC113579
Control Environment.
Monitoring.
Options (a), (c) and (d) are incorrect based on the above explanation.
10
BEC111776
Which of the following positions best describes the nature of the Board of
Directors of ABC Co's relationship to the company?
Agent.
Executive.
Fiduciary.
Representative.
Options (a), (b) and (d) are incorrect as per the above explanation.
1
BEC113145
The Sarbanes Oxley Act (SOX) of 2002 was enacted by the US government to enhance
corporate responsibility, financial disclosure, and to battle corporate and
accounting fraud. SOX also created the Public Company Accounting Oversight Board
(PCAOB), under Title I, to oversee the activities of the auditing profession.
Option (a) is incorrect because, ISCAF, now known as Information Systems Audit and
Control Association (ISACA) is focused on IT governance. ISACA has developed a
framework, referred to as COBIT, for information technology (IT) and IT governance.
The COBIT framework is business oriented in that it provides a systemic way of
integrating IT with business strategy and business risk.
Option (b) is incorrect because, ISACA formed the ITGI to focus on original
research on IT governance and related topics.
2
BEC118775
The audit committee of the issuer is directly responsible for the appointment,
compensation, and oversight of the registered accounting firm.
The audit committee chairperson must certify that the quarterly report filed with
the SEC fairly presents the financial condition and results of operations
The audit committee of the issuer must establish whistleblowing mechanisms and
procedures within the issuer.
The management (including CEO and CFO) certify periodic reports filed with SEC (eg:
annual 10K, quarterly 10Q). The audit committee chairperson is usually an
independent person and therefore cannot certify the financial reports. The Audit
committee is required to be independent means any member of the audit committee may
not accept any consulting, advisory, or other compensatory fees from the Company
(other than board or committee fees) or be affiliated with the Company.
Option (a), (c) and (d) are incorrect because, as per SOX Title III- Corporate
responsibility -Section 301 the audit committee is required to do the following:
3
BEC11382
Assignment
Novation
Delegation
Option (a) is incorrect because assignment is transfer of rights held by one party
(assignor) to another party (assignee). The original party continues to be liable
to the contract, until discharged.
4
BEC110405
Change management.
A social event.
Segregation of duties.
An economic event.
Option (b) is incorrect because social events include planned events that involve
large group of people.
5
BEC118788
Standing data should be stored in a safe location with prescribed access rights to
authorized individuals who provide verification
Whenever changes are made to standing data they should be reviewed and approved by
appropriate personnel prior to implementation
Standing data, although not updated often, should be backed up on a periodic basis
to make sure no data is lost
Insert, update, and deletion rights should be designated to key personnel whose
activities are segregated from users of the data
6
BEC31298
II only.
I and II only.
All of above.
Options (a), (c) and (d) are incorrect based on the above explanation.
7
BEC11487
Assessing the severity of risk is part of the COSO ERM framework component:
Performance
Risk assessment is part of the Performance (Mnemonic: CRIME) component of the ERM
framework. The risk management principles of Performance are:
Identifies Risk
Assesses Severity of Risk
Prioritizes Risks
Implements Risk Responses
Develops Portfolio View
Options (a), (b) and (c) are incorrect based on the above information.
8
BEC113585
The use of technology can make monitoring component of internal control more
effective by:
Option (d) is incorrect because use of technology for monitoring activities would
not mean that supervisory reviews can be eliminated altogether.
9
BEC11435
10
BEC112912
Department manager.
Systems analyst.
Computer programmer.
AS per COSO, sound internal controls require proper segregation of duties which
includes assigning different people the responsibilities of authorizing
transactions, recording transactions, maintaining custody of assets and performing
comparisons.
Option (a) is incorrect because the department manager may be responsible for
recording or authorization of data related transactions and therefore should not be
given the responsibility of reprocessing errors detected.
Option (b) is incorrect because the systems analyst may be responsible for
analyzing the data and performing comparisons. Therefore, he/she should not be
given the responsibility to reprocess errors detected.
Option (c) is incorrect because the computer programmer may be responsible for
writing and maintaining the software program and should not be given the
responsibility of reprocessing errors detected.
11
BEC11430
Which of the following set of risk management principles is part of “governance &
culture” of the revised ERM framework?
Exercises Board Risk Oversight: The board of directors provides oversight of the
strategy and carries out governance responsibilities to support management in
achieving strategy and business objectives.
Defines Desired Culture: The organization defines the desired behaviors that
characterize the entity’s desired culture.
Under COSO’s ERM Framework, ERM consists of five components (Mnemonic: CRIME):
Governance & Culture; Strategy & Objective-setting; Performance; Review and
Revision; and Information, Communication & Reporting.
Options (a), (b) and (c) are incorrect because they have Reports on Risk, Culture,
and Performance which is part of Information, Communication & Reporting and does
not include all the five principles of Governance & culture.
12
BEC113126
The board of directors must have an audit committee entirely composed of members
who are independent from management influence.
Option (a) is incorrect because, Sarbanes –Oxley Act (SOX), does not mandate each
member of the board of directors be independent. Board of Directors is a group of
individuals that are elected as, or elected to act as, representatives of the
stockholders to establish corporate management related policies and to make
decisions on major company issues. Every public company must have a board of
directors. Ideally the board of directors should be a representation of both
management and shareholders' interests by consisting of both inside members and
independent or outside members.
Independent or outside members are not part of management and have no significant
benefit from the corporation other than compensation as board member. (Officers,
employees or major stockholders who are on the board are referred to as ‘inside
directors’.)
Option (d) is incorrect because, though the board of directors must have a
compensation committee, a nominating committee, and an audit committee, the
nominating committee or corporate governance committee need not be entirely
composed of independent members. Only Audit committee and compensation committee
should be independent.
13
BEC11472
maximum amount of risk an entity is able to hedge in the pursuit of strategy and
business objectives.
minimum amount of risk an entity is able to hedge in the pursuit of strategy and
business objectives.
maximum amount of risk an entity is able to absorb in the pursuit of strategy and
business objectives.
minimum amount of risk an entity is able to absorb in the pursuit of strategy and
business objectives.
Options (a) and (b) are incorrect because risk capacity is not the measure a firm’s
ability to hedge.
Option (d) is incorrect because it is the maximum (not minimum) amount of risk an
entity is able to absorb.
14
BEC113581
Which of the following types of controls would not come under existing control
activities component of internal controls?
Options (a), (c) and (d) are incorrect because advance approval of vendors,
periodic comparing of actual costs to budget and unused checks being kept in a
locker are all examples of existing control activities which are designed to
mitigate individual risks to the achievement of objectives.
15
BEC113122
Risks.
The law.
Technology.
Operating procedures
Option (b),(c) and (d) are incorrect because internal control monitors the changes
in law, technology and operating procedures through monitoring of risk.
16
BEC310123
The accounts payable system compares the receiving report to the vendor invoice.
The accounts payable clerk manually verifies arithmetic on the vendor invoice.
The accounts payable clerk files invoices and supporting documentation after
payment.
Option (d) is incorrect because it is the duty of accounts payable department clerk
to file invoices and shipping documents after payment. This also helps in
preventing duplicate payments for the same purchase invoice.
17
BEC11500
there will always be an inverse correlation between risk and the level of business
activities.
The risk response may change the risk profile. Once management selects a risk
response, control activities are necessary to ensure that those risk responses are
carried out as intended. Management must recognize that risk is managed but not
eliminated. Some residual risk will always exist, not only because resources are
limited, but because of future uncertainty and limitations inherent in all tasks.
Option (a) is incorrect because the correlation between risk and the level of
business activities can be either inverse or direct. Moreover, residual risk is not
a function of the correlation between risk and the level of business activities,
but the level of business activities.
Option (d) is incorrect because the risk curve is not stationary, and it may shift
up or down in response to a change.
18
BEC116160
Which of the following documents would most likely contain specific rules for the
management of a business corporation?
Articles of incorporation.
Bylaws.
Certificate of authority.
Shareholders' agreement.
19
BEC113563
Which of the following statements is correct concerning the most effective external
corporate monitoring device?
External auditors are the most effective external corporate monitoring device
because they audit the corporation’s financial statements in accordance with
prescribed standards.
Internal auditors are the most effective external corporate monitoring device
because they communicate directly with the audit committee.
Attorneys provide legal advice to the management and are the most effective
external corporate monitoring device.
Board of directors is the most effective external monitoring device because they
are elected by the shareholders.
The correct answer is (a).
External auditors are the most effective external corporate monitoring device
because they are the external independent party that audit the corporation’s
financial statements in accordance with prescribed standards and communicate with
the audit committee information that will help the committee perform its oversight
function.
Options (b) and (d) are incorrect because internal auditors and board of directors
are internal corporate monitoring devices.
Option (c) is incorrect because attorneys only provide legal advice to the
management and are not as effective as external auditors.
20
BEC11508
Audit committee
Compensation committee
Risk committee
Nomination/governance committee
Option (a) is incorrect because audit committee establishes the importance of risk
oversight.
Option (b) is incorrect because compensation committee establishes and oversees the
compensation arrangements for the chief executive officer and other executives, as
appropriate, to motivate without providing incentives for undue risk taking.
21
BEC11440
Which of the following is expected of the board of directors based on their skills,
experience and knowledge?
The board providing expert legal advice in avoiding customer and competitive
litigation
The board interfering in daily business operations of the firm to improve the
business processes and operations
The board of directors is well positioned to offer expertise and provide oversight
of enterprise risk management through its collective skills, experience, and
business knowledge. This includes, for instance, asking the appropriate questions
to challenge management when necessary about strategy, business objectives, and
performance targets. It also includes interacting with stakeholders and presenting
alternative views and actions.
Option (a) is incorrect because providing legal advice is the responsibility of the
corporate legal department.
Option (c) is incorrect because the board should refrain from interfering in the
day-to-day business and it is the responsibility of the management.
22
BEC112994
Shareholders have no right to manage their company unless they are also directors
Shareholders have a right to use the customer mailing list of the corporation.
Shareholders are investors who purchase corporate stock and enjoy a number of
rights pertaining to their ownership. The rights of the shareholders depend largely
on the provisions in the corporation's charter and bylaws. The most important
rights that most common shareholders possess include the right to share in the
company's profitability, income and assets, right to vote on certain matters
involving fundamental changes affecting the corporation, right to receive dividends
(if declared), right to inspect books and records and right to elect the board of
directors. However, the shareholders have no right to participate in the management
of the company's business and its affairs unless they are directors of the company.
Option (b) is incorrect because shareholders have the right to receive dividends,
only if the board of directors declares dividends. In the event that no dividends
are declared by the board, shareholders cannot claim them as a right.
Option (c) is incorrect because shareholders have the right to inspect the books
and records of the corporation in good faith and for a proper use.
Option (d) is incorrect because shareholders do not have the right to use the
customer mailing list of the corporation, as they are not involved in the
management and day to day operations of the corporation.
23
BEC113593
When an enterprise takes an action that accepts increased risk to achieve improved
performance, it can be said that the enterprise is:
Option (a) is incorrect because an enterprise can be said to be avoiding the risk
when some action is taken to remove the risk.
Option (c) is incorrect because an enterprise is said to be accepting the risk when
no action is taken to change the severity of the risk because the risk is within
the risk appetite of the enterprise.
24
BEC113125
According to COSO, the presence of a written code of conduct provides for a control
environment that can
Ensure that competent evaluators are implementing and monitoring internal controls.
A written code of conduct for employees sets the ethical expectations of the
management. This, reinforced by training, top down communications, and requirements
for periodic written statements of compliance from key employees, is an important
component of the ethical values which in turn is a component of the control
environment of the entity's internal control. The other components of control
environment are competent individuals, organizational structure, performance
incentives, those charges with governance and responsibility assignment.
Option (a) is incorrect because, a written code of conduct for control environment
will not override the organization's history and culture but will make it more
pronounced and noticeable.
Option (c) is incorrect because, written code of conduct for control environment
cannot ensure implementing and monitoring of internal control by competent
evaluator.
25
BEC113597
Prioritize risks.
Identify risks.
Assess severity of risk.
Options (a), (b) and (c) are incorrect based on the above explanation.
26
BEC11436
The principle “Reports on Risk, Culture, and Performance” is part of the ERM
component:
Performance
Under COSO’s ERM Framework, ERM consists of five components (Mnemonic: CRIME):
Governance & Culture; Strategy & Objective-setting; Performance; Review and
Revision; and Information, Communication & Reporting. The principle “Reports on
Risk, Culture, and Performance” is part of “Information, Communication, and
Reporting”. The organization reports on risk, culture, and performance at multiple
levels and across the entity.
27
BEC113595
Adopting aggressive growth strategies which have a high likelihood of improving the
profitability of the business unit.
Option (a) is incorrect because ceasing a high risk product line altogether is an
example of risk avoidance.
Option (b) is incorrect because adding a new product line which is known to be high
risk along with a possibility of generating high returns is an example of risk
pursuing.
Option (d) is incorrect because adopting aggressive growth strategies which have a
high likelihood of improving the profitability of the business unit is an example
of risk pursuing.
28
BEC113000
Dodd-Frank Wall Street Reform and Consumer Protection Act was established to
promote the financial stability by improving accountability and transparency in the
financial system and to protect consumers from abusive financial services
practices. Which of the following is not a requirement of the Dodd-Frank Act?
Disclosure is required of the reasons why the company has chosen to have one person
serve as Chairman and CEO, or to have different individuals serve in those roles.
The Dodd Frank Act is a US federal law that places regulation of the financial
industry in the hands of the government. It aims to create new financial regulatory
processes that enforce transparency and accountability while implementing rules for
consumer protection.
Dodd- Frank Wall Street Reforms & Consumer Protection Act (2010), mandate for all
public companies (issuers) that the Compensation Committee comprises entirely of
Independent directors.
SOX, 2002, requires for all public companies (issuers) that the Audit Committee
comprises only of independent directors. Also, SOX requires disclosure whether at
least one of the members is a ‘Financial Expert’.
Option (a) is incorrect because the Dodd-Frank Act requires public corporations to
disclose why or why not the chairman of the board is also the CEO.
Option (b) is incorrect because the Act requires that all members of the
compensation committee of public companies to be independent.
Option (c) is incorrect because the Act does require that shareholders must be
allowed a non binding vote on executive compensation at least every 3 years and a
vote at least every 6 years as to whether the vote on compensation should be held
more often.
29
BEC113584
Conduct evaluations.
30
BEC111774
Smith was an officer of CCC Corp. As an officer, the business judgment rule applied
to Smith in which of the following ways?
Since the business judgment rule specifically covers only directors , this rule
cannot be applied to Smith who is an officer of the company.
If Smith makes, in good faith, a serious but honest mistake in judgment, Smith is
generally not liable to CCC for damages caused.
If Smith makes, in good faith, a serious but honest mistake in judgment, Smith is
generally liable to CCC for damages caused, but CCC may elect to reimburse Smith
for any damages Smith paid.
If Smith makes, in good faith, a serious but honest mistake in judgment, Smith is
generally liable to CCC for damages caused, and CCC is prohibited from reimbursing
Smith for any damages Smith paid.
Options (b), (c) and (d) are incorrect because of the above explanation.
31
BEC118792
improved quality
reduced TAT
Based on above explanation options (a), (b) and (d) is incorrect as all these are
benefits of automating business processes.
32
BEC113559
Which of the following is a New York Stock Exchange (NYSE) rule related to
corporate governance?
Option (a) is incorrect because NYSE corporate governance rule states that the
directors independence information to be provided to investors (not public).
Option (b) is incorrect because NYSE corporate governance rule states that the code
of conduct applicable to all directors, officers and employees to be made publicly
available and not just to the respective employees and directors.
Option (d) is incorrect because NYSE corporate governance rule states majority (not
all) directors on the board should be independent.
33
BEC118773
According to COSO, which of the following issues should lead to the greatest
concern regarding the effectiveness of an entity's internal control?
Monitoring internal control in areas that have never had a control failure
Errors from control failures that were not detected timely by the routine
monitoring procedures
Unwarranted duplication of efforts when multiple people monitor the same control
Option (a) is incorrect because, monitoring areas that have never had a control
failure wouldn’t be much of a concern as option (b). It will be presumed that the
things are working as per control standards. Also, discrepancies if any, are being
acted upon.
34
BEC113578
Option (a) is incorrect because monitoring activity ensures that the controls are
operating as intended and thus would provide valuable support of assertions
regarding the effectiveness of the system of internal control.
Option (c) is incorrect because evaluators who monitor controls within the
organization should be both competent and objective.
35
BEC112919
Operational audit.
Compliance Audit.
Financial audit.
Management Audit.
36
BEC110342
The codes of conduct must be in writing and displayed in public areas, such as a
break room.
options (a), (b) and (c) are incorrect because of the above explanation.
37
BEC314110
Accounts receivable.
Credit.
Accounts payable.
Treasurer.
The correct answer is (d).
Option (b) is incorrect because credit department usually initiates the write-off
of the account receivables and since they are granting credit they would not be
allowed to authorize the write-off. It is ultimately approved by the treasurer.
38
BEC112664
Suspended or barred from being associated with a registered public accounting firm
or be required to end such association.
Option (a), (b) and (d) are incorrect based on the above explanation.
39
BEC112995
Declare dividends
The Articles of Incorporation are legal documents filed with a government body to
oficially document the creation of a corporation. It contains important information
like the name of the corporation, its address, purpose and powers of the
corporation, number of authorized shares etc. The Articles of Incorporation can be
amended only by the approval of shareholders and not by the board of directors.
Option (a) is incorrect because the board of directors have the power to select or
remove the chief executive officer.
Option (b) is incorrect because the board of directors are charged with the general
operations of running the corporation on behalf of the shareholders. They are
entrusted with the responsibility of declaring and paying dividends.
Option (c) is incorrect because the board of directors are not only responsible for
hiring top management but also determining their compensation.
40
BEC110275
According to COSO, the use of ongoing and separate evaluations to identify and
address changes in internal control effectiveness can best be accomplished in which
of the following stages of the monitoring-for-change continuum?
Control baseline.
Change identification.
Change management.
Control revalidation/update.
Option (a) is incorrect because control baseline is the stage one in the monitoring
process that helps in understanding of internal controls.
Option (c) is incorrect because change management is the third stage where
management evaluates the changes identified in stage two and establishes a new
baseline.
Option (d) is incorrect because control revalidation/update is the last stage where
management periodically revalidates/updates the controls when no known changes
have occurred.
41
BEC113594
Options (a), (b) and (d) are incorrect because if the risk is within the risk
appetite of the enterprise, an enterprise would not avoid, reduce or transfer the
risk.
42
BEC110401
According to COSO, the position or internal entity that is best suited, as part of
the enterprise risk management process, to devise and execute risk procedures for a
particular department is:
Option (b) is incorrect because the CEO is only involved in assessing the risk
management abilities of an organization as a whole; not at the individual
department level.
Option (d) is incorrect because the audit committee is an independent committee and
has no involvement with the execution of the enterprise risk management process.
43
BEC113560
I. Investment banks.
II. Attorneys.
IV. Creditors.
I, II and IV only.
I and II only.
All of above.
Investment banks: Help corporations issue equity and debt offerings. They must
evaluate the company prior to becoming involved in selling the securities and are
considered an external corporate monitoring device.
Attorneys: They review securities filings and provide management advice on legal
matters and are considered an external corporate monitoring device.
Internal revenue service (IRS): By requiring certain information on corporation’s
income tax return, auditing corporation tax returns and enforcing penalties for
filing false tax returns, acts as an external corporate monitoring device.
Creditors: Many debt agreements contain covenants that must be complied with to
prevent the creditor from taking actions because of which they monitor
corporation’s compliance with such agreements and are considered an external
corporate monitoring device.
Options (a), (b) and (c) are incorrect based on the above explanation.
44
BEC110362
Technical.
Physical.
Administrative.
Logical.
45
BEC113558
Which of the following rules helps to guard a corporation's board of directors from
frivolous allegations about the way it conducts business?
Prudency rule.
Integrity rule.
Business judgment rule.
Options (a), (b) and (c) are incorrect because no such rules exist to guard the
corporation’s board of directors.
46
BEC112991
Right to sue on behalf of the corporation if the directors fail to do their duty
towards the corporation
Shareholders are investors who purchase corporate stock and enjoy a number of
rights pertaining to their ownership. The rights of the shareholders depend largely
on the provisions in the corporation's charter and bylaws. The most important
rights that most common shareholders possess include the right to share in the
company's profitability, income and assets, general voting rights and a degree of
control and influence over company management selection. Shareholders have no right
to participate in the management of a company's business and its affairs, therefore
they do not have the right to determine the mission of the organization. The
mission of the organization is determined by the board of directors.
Option (a) is incorrect because as owners of the company the shareholders have the
right to the dividend declared and division of profits based on the number of
shares owned by them.
Option (b) is incorrect because shareholders have the right to bring suit against
the corporation for wrongful acts by the directors and officers of the corporation.
Option (c) is incorrect because shareholders are owners of the company and have the
right to inspect the records and books of the corporation.
47
BEC114030
Preapproving all audit and non-audit services provided by the company's auditor
The appointment, compensation, and oversight of the work of the registered public
accounting firm employed by the company.
As per SOX Title III- Corporate responsibility, section 302 the officers (including
CEO/CFO) are responsible for certifying that they acknowledge their responsibility
for establishing and maintaining ICFR.
Also, the officers are required to evaluate the effectiveness of ICFR, present
their conclusion as to effectiveness and disclose any material changes in the
Company’s ICFR.
The Audit committee is required to be independent means any member of the audit
committee may not accept any consulting, advisory, or other compensatory fees from
the Company (other than board or committee fees) or be affiliated with the Company.
In line with Section 404 Title IV, the auditor is only required to attest
management’s assessment of effectiveness of I/C Financial reporting.
Options (b), (c) and (d) are as per SOX Title the audit committee is required to
fulfil.
48
BEC11457
define the desired behaviors that characterize the entity’s desired culture.
Under COSO’s ERM Framework, ERM consists of five components (Mnemonic: CRIME):
Governance & Culture; Strategy & Objective-setting; Performance; Review and
Revision; and Information, Communication & Reporting. After the board exercising
risk oversight and management establishing operating structures, as per the
’Governance and Culture’ component, the organization should define the desired
behaviors that characterize the entity’s desired culture.
Option (b) is incorrect as it is the logical step after the definition of entity’s
desired culture in the Governance and Culture component.
Options (c) and (d) are incorrect because they are part of the Enterprise Strategy
& Objective setting component.
49
BEC118785
that details the allocation of resources and time needed to manufacture each
product in a specified quantity during a provided time period.
that explains in detail the specific steps and sequence of those steps needed to
accurately manufacture a product
50
BEC11431
Select the set of risk management principles of “Risk & Performance” of the updated
ERM framework.
Identifies Risk
Prioritizes Risks
Under COSO’s ERM Framework, ERM consists of five components (Mnemonic: CRIME):
Governance & Culture; Strategy & Objective-setting; Performance; Review and
Revision; and Information, Communication & Reporting.
Options (b) and (c) are incorrect because they have Reports on Risk, Culture, and
Performance which is part of Information, Communication & Reporting and does not
include all the five principles of Performance. Option (c) is also incorrect
because
Setting Risk-Return trade-off is not part of the ERM framework.
Options (d) is incorrect because it does not include all the five principles of
Performance. Setting Risk-Return trade-off is not part of the ERM framework.